Wazuh upgrade from 4.1 to 4.2 , we need Elasticsearch as 7.16.1 (log4shell vulnerability)

249 views
Skip to first unread message

Prachi Katakwar

unread,
Dec 15, 2021, 9:46:55 AM12/15/21
to Wazuh mailing list

Hi Team ,

 

This is my basic setup of Wazuh as of now:, but due to log4shell vulnerability , my management is asking me to install Elasticsearch 7.16.1.

When I see the Wazuh upgrade  documentation link , you have 7.14.2 as the latest ES with current Wazuh as 4.2

 

https://documentation.wazuh.com/current/upgrade-guide/elasticsearch-kibana-filebeat/upgrading-elastic-stack.html

 

Would it be safe to have ES as 7.14.2 ? Need to give explanation to my management , do you have any workaround or something ?

 

If I install ES 7.16.1 , would it work with latest version of Wazuh 4.2?

 

Components

Previous Version

Upgraded Version

Wazuh

3.12

4.1

Elasticsearch

7.6

7.10.2

Filebeat

7.6

7.10.2

Kibana

7.6

7.10.2

 

Request your immediate intervention here.

 

BR

//Prachi

Ezequiel

unread,
Dec 15, 2021, 12:25:22 PM12/15/21
to Wazuh mailing list
Hi Prachi,

We currently do not have elasticsearch 7.16 support, we are working to support you in the next releases.

To mitigate Log4j2 vulnerability (temporary solution) in 7.14.2 version,


Regards

Prachi Katakwar

unread,
Dec 17, 2021, 7:31:15 AM12/17/21
to Ezequiel, Wazuh mailing list

Hi Ezequiel,

 

Sorry for the delay in reply, thank you so much for the information.

 

Wish you a happy Christmas Evening😊

 

 

BR

//Prachi

--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/43e59204-3b3a-4d25-9385-9d8087a995acn%40googlegroups.com.

Reply all
Reply to author
Forward
0 new messages